datasynth-server 2.1.0

gRPC and REST server for synthetic data generation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239

//! Redis-backed distributed rate limiting.
//!
//! Uses a Lua script for atomic INCR + EXPIRE sliding window rate limiting,
//! enabling consistent rate limiting across multiple server instances.

use std::time::Duration;

use redis::aio::ConnectionManager;
use redis::Script;
use tracing::{error, info, warn};

/// Redis-backed rate limiter for distributed deployments.
///
/// Uses a sliding window counter implemented via a Lua script that
/// atomically increments the request count and sets expiry, ensuring
/// consistency even under high concurrency across multiple nodes.
#[derive(Clone)]
pub struct RedisRateLimiter {
    conn: ConnectionManager,
    max_requests: u32,
    window_secs: u64,
    key_prefix: String,
    script: Script,
}

/// Result of a Redis rate limit check.
#[derive(Debug, Clone)]
pub struct RedisRateLimitResult {
    /// Whether the request is allowed.
    pub allowed: bool,
    /// Current request count in the window.
    pub current_count: u32,
    /// Maximum requests allowed per window.
    pub max_requests: u32,
    /// Remaining requests in the current window.
    pub remaining: u32,
}

/// Lua script for atomic sliding window rate limiting.
///
/// This script atomically:
/// 1. Increments the counter for the given key
/// 2. Sets the TTL on first request (when count becomes 1)
/// 3. Returns the current count and TTL remaining
///
/// Returns: [current_count, ttl_remaining]
const RATE_LIMIT_SCRIPT: &str = r#"
local key = KEYS[1]
local max_requests = tonumber(ARGV[1])
local window_secs = tonumber(ARGV[2])

local current = redis.call('INCR', key)

if current == 1 then
    redis.call('EXPIRE', key, window_secs)
end

local ttl = redis.call('TTL', key)

-- Safety: if TTL is -1 (no expiry set, race condition), reset it
if ttl == -1 then
    redis.call('EXPIRE', key, window_secs)
    ttl = window_secs
end

return {current, ttl}
"#;

impl RedisRateLimiter {
    /// Create a new Redis rate limiter by connecting to the given URL.
    ///
    /// # Arguments
    /// * `redis_url` - Redis connection URL (e.g., `redis://127.0.0.1:6379`)
    /// * `max_requests` - Maximum requests allowed per window
    /// * `window` - Time window duration
    pub async fn new(
        redis_url: &str,
        max_requests: u32,
        window: Duration,
    ) -> Result<Self, redis::RedisError> {
        let client = redis::Client::open(redis_url)?;
        let conn = ConnectionManager::new(client).await?;
        info!(
            "Redis rate limiter connected to {} (max {} requests per {}s)",
            redis_url,
            max_requests,
            window.as_secs()
        );

        Ok(Self {
            conn,
            max_requests,
            window_secs: window.as_secs(),
            key_prefix: "datasynth:ratelimit:".to_string(),
            script: Script::new(RATE_LIMIT_SCRIPT),
        })
    }

    /// Set a custom key prefix for Redis keys.
    ///
    /// Default is `datasynth:ratelimit:`.
    pub fn with_key_prefix(mut self, prefix: String) -> Self {
        self.key_prefix = prefix;
        self
    }

    /// Build the Redis key for a given client identifier.
    fn make_key(&self, client_key: &str) -> String {
        format!("{}{}", self.key_prefix, client_key)
    }

    /// Check if a request from the given client should be allowed.
    ///
    /// Returns a `RedisRateLimitResult` with the decision and metadata.
    /// On Redis errors, falls back to allowing the request (fail-open)
    /// to avoid blocking traffic when Redis is unavailable.
    pub async fn check_rate_limit(&self, client_key: &str) -> RedisRateLimitResult {
        let key = self.make_key(client_key);
        let mut conn = self.conn.clone();

        match self
            .script
            .key(&key)
            .arg(self.max_requests)
            .arg(self.window_secs)
            .invoke_async::<Vec<u32>>(&mut conn)
            .await
        {
            Ok(result) if result.len() == 2 => {
                let current_count = result[0];
                let allowed = current_count <= self.max_requests;
                let remaining = if allowed {
                    self.max_requests.saturating_sub(current_count)
                } else {
                    0
                };

                RedisRateLimitResult {
                    allowed,
                    current_count,
                    max_requests: self.max_requests,
                    remaining,
                }
            }
            Ok(result) => {
                warn!(
                    "Unexpected Redis rate limit script result length: {}",
                    result.len()
                );
                // Fail open
                RedisRateLimitResult {
                    allowed: true,
                    current_count: 0,
                    max_requests: self.max_requests,
                    remaining: self.max_requests,
                }
            }
            Err(e) => {
                error!("Redis rate limit check failed (failing open): {}", e);
                // Fail open - allow request when Redis is unavailable
                RedisRateLimitResult {
                    allowed: true,
                    current_count: 0,
                    max_requests: self.max_requests,
                    remaining: self.max_requests,
                }
            }
        }
    }

    /// Get the remaining request count for a client without consuming a request.
    ///
    /// On Redis errors, returns the max requests (fail-open).
    pub async fn remaining(&self, client_key: &str) -> u32 {
        let key = self.make_key(client_key);
        let mut conn = self.conn.clone();

        match redis::cmd("GET")
            .arg(&key)
            .query_async::<Option<u32>>(&mut conn)
            .await
        {
            Ok(Some(count)) => self.max_requests.saturating_sub(count),
            Ok(None) => self.max_requests,
            Err(e) => {
                error!("Redis remaining check failed (failing open): {}", e);
                self.max_requests
            }
        }
    }

    /// Get the maximum requests per window.
    pub fn max_requests(&self) -> u32 {
        self.max_requests
    }

    /// Get the window duration in seconds.
    pub fn window_secs(&self) -> u64 {
        self.window_secs
    }
}

#[cfg(test)]
#[allow(clippy::unwrap_used)]
mod tests {
    use super::*;

    #[test]
    fn test_make_key() {
        // We can test key generation without a Redis connection
        let key_prefix = "datasynth:ratelimit:".to_string();
        let key = format!("{}192.168.1.1", key_prefix);
        assert_eq!(key, "datasynth:ratelimit:192.168.1.1");
    }

    #[test]
    fn test_rate_limit_result() {
        let result = RedisRateLimitResult {
            allowed: true,
            current_count: 5,
            max_requests: 100,
            remaining: 95,
        };
        assert!(result.allowed);
        assert_eq!(result.remaining, 95);
    }

    #[test]
    fn test_rate_limit_result_exceeded() {
        let result = RedisRateLimitResult {
            allowed: false,
            current_count: 101,
            max_requests: 100,
            remaining: 0,
        };
        assert!(!result.allowed);
        assert_eq!(result.remaining, 0);
    }
}